$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft File: XnKqfVsdVjLl0z_scvp0M_Sc4po.mft (raw, json) Hash identifier: +jGvO9ks6nnHZbHORtkJf946u9gfHP3FyCIIOvjNAfk= Subject key identifier: 22:B3:87:33:01:3D:2A:0C:15:D1:5E:47:98:18:C1:04:5D:6F:F1:8F Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A Certificate issuer: /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Certificate serial: 0180 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft Manifest number: 0161 Signing time: Sun 29 Jun 2025 03:24:52 +0000 Manifest this update: Sun 29 Jun 2025 03:24:52 +0000 Manifest next update: Sun 06 Jul 2025 03:24:52 +0000 Files and hashes: 1: XnKqfVsdVjLl0z_scvp0M_Sc4po.crl (hash: IF5Bk4cLcdqEVVXn6vzzh7sZA+jvhFRtxbOFyHgCsuQ=) 2: 36C31E00637111EEA51CA05EC4F9AE02.roa (hash: VRlasPmFdnGQ7jXmsGRiZ9YkkvB4UEQJbRXUpRC4bL8=) 3: 00E626A4A57611EF98285E5FC4F9AE02.roa (hash: Qgji862kow2VwzLmbLL0a0Y2hhvgFChH2ZT0r4kSTl8=) 4: 98BE8828663D11EE8CBBAE7CC4F9AE02.roa (hash: qOQvPOfqQOexW3Sxvhsqmm5W1KEN72YTFSt5Z0QktXg=) 5: 99341DD6663D11EE8CBBAE7CC4F9AE02.roa (hash: pidH+xtb8OXyN3SlmzLiBUdr0SQho8QbaXQpLP6w5rQ=) 6: 678C24C0663F11EEBD955D43C4F9AE02.roa (hash: LMxslHx0hj+eRPegweO/Q77RiY35syFR40MU3J+sT8s=) 7: 9830B6D8663D11EE8CBBAE7CC4F9AE02.roa (hash: Wa8VD0lmDOwdth5KoUIOfMLBdB57aoMl1cYAfCOjMXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 03:24:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 384 (0x180) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E82, serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Validity Not Before: Jun 29 03:24:52 2025 GMT Not After : Jul 6 03:24:52 2025 GMT Subject: CN=6860b204-7e72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:8c:40:d7:6d:0f:0b:b2:c6:5b:e2:cd:0b:59: 82:de:ed:c1:77:b4:c1:28:77:a1:aa:3c:0f:24:94: 7b:4c:52:06:88:e2:a0:16:e5:42:bf:47:da:0d:86: 90:4a:d6:3e:eb:70:70:8f:38:35:ed:b0:d6:f1:9e: 21:04:b2:ad:89:ae:8e:72:3f:2e:6d:ea:c0:6f:2a: 17:f3:51:ad:b7:32:8d:ea:1b:52:67:b6:81:a6:c2: 1b:fc:bd:ae:14:68:ed:4a:81:0e:59:6b:72:92:31: 57:2c:6d:ea:1c:d4:fa:85:2d:b0:93:c1:9f:25:c7: 12:dc:18:80:e2:29:76:44:f3:e6:23:23:8d:fe:1d: bd:64:e7:84:29:e0:01:e9:67:9f:48:37:93:cb:10: 46:16:7a:4f:6e:48:e1:6b:93:c1:a5:3a:57:5e:32: 03:60:25:9c:56:34:ac:cf:70:e6:8d:3c:99:9f:c6: 32:f3:f2:b8:e2:61:9f:69:ae:d4:45:5f:d2:d4:1f: 72:ef:7f:11:9b:a8:f5:12:26:36:44:ee:0d:37:8d: fd:26:23:28:41:55:81:2a:7b:a5:eb:fc:db:8e:9b: db:82:0b:3e:2e:ec:02:5c:4f:cc:87:ee:53:cc:f7: fe:c8:de:14:bd:7a:69:29:28:14:29:40:ff:4b:81: 79:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:B3:87:33:01:3D:2A:0C:15:D1:5E:47:98:18:C1:04:5D:6F:F1:8F X509v3 Authority Key Identifier: keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:78:41:a4:65:fc:71:50:cb:37:33:40:6f:00:e2:1f:f5:8d: 94:f9:e9:73:d2:bd:36:05:6b:e3:87:b3:f0:3d:59:18:da:fa: f5:09:bd:28:5c:f8:d3:af:54:3f:b7:ff:c1:b7:01:3a:cf:22: db:c7:ac:71:63:05:34:dd:8d:b5:84:11:53:ed:9d:a0:13:59: bf:81:45:6d:6f:f4:e9:a4:e5:60:8d:c0:29:4e:ca:86:5c:f7: 9f:a3:f9:f1:cb:a5:15:41:2c:37:1f:d8:74:af:10:6b:6f:87: 04:eb:f2:d1:4f:f1:67:5a:83:64:7b:10:78:2a:40:f5:23:36: 9f:97:7e:d0:df:42:aa:0d:c5:0d:ff:36:0d:77:48:3e:b7:da: 77:cc:a5:72:35:e8:70:60:a1:c3:54:e3:4e:de:a4:e6:e6:3d: 72:06:83:1b:66:81:c5:5e:26:4e:2d:81:cb:1f:97:ca:1d:b3: c6:22:23:89:33:62:dc:ce:59:88:f4:bc:bf:9b:40:25:38:10: 99:b3:bc:01:09:07:be:73:2d:eb:3f:18:02:7f:99:4b:40:62: fd:ab:5c:21:87:40:ca:f3:64:82:06:ed:9c:f2:14:01:37:1c: c5:f8:21:f0:08:7d:0e:7b:3a:14:aa:19:92:04:26:15:c7:a8: 60:fe:aa:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlFODIxMTAvBgNVBAUTKDVFNzJBQTdENUIxRDU2MzJFNUQzM0ZFQzcyRkE3NDMz RjQ5Q0UyOUEwHhcNMjUwNjI5MDMyNDUyWhcNMjUwNzA2MDMyNDUyWjAYMRYwFAYD VQQDEw02ODYwYjIwNC03ZTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6YxA120PC7LGW+LNC1mC3u3Bd7TBKHehqjwPJJR7TFIGiOKgFuVCv0faDYaQ StY+63Bwjzg17bDW8Z4hBLKtia6Ocj8uberAbyoX81GttzKN6htSZ7aBpsIb/L2u FGjtSoEOWWtykjFXLG3qHNT6hS2wk8GfJccS3BiA4il2RPPmIyON/h29ZOeEKeAB 6WefSDeTyxBGFnpPbkjha5PBpTpXXjIDYCWcVjSsz3DmjTyZn8Yy8/K44mGfaa7U RV/S1B9y738Rm6j1EiY2RO4NN439JiMoQVWBKnul6/zbjpvbggs+LuwCXE/Mh+5T zPf+yN4UvXppKSgUKUD/S4F5vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCKzhzMB PSoMFdFeR5gYwQRdb/GPMB8GA1UdIwQYMBaAFF5yqn1bHVYy5dM/7HL6dDP0nOKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU4Mi9FQTdFNUZBNjYz NkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZqTGwwel9zY3ZwME1fU2M0 cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUU4Mi9FQTdFNUZBNjYzNkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZq TGwwel9zY3ZwME1fU2M0cG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIeEGkZfxxUMs3M0BvAOIf9Y2U+elz0r02BWvjh7PwPVkY2vr1Cb0o XPjTr1Q/t//BtwE6zyLbx6xxYwU03Y21hBFT7Z2gE1m/gUVtb/TppOVgjcApTsqG XPefo/nxy6UVQSw3H9h0rxBrb4cE6/LRT/FnWoNkexB4KkD1Izafl37Q30KqDcUN /zYNd0g+t9p3zKVyNehwYKHDVONO3qTm5j1yBoMbZoHFXiZOLYHLH5fKHbPGIiOJ M2LczlmI9Ly/m0AlOBCZs7wBCQe+cy3rPxgCf5lLQGL9q1whh0DK82SCBu2c8hQB NxzF+CHwCH0OezoUqhmSBCYVx6hg/qq1 -----END CERTIFICATE-----Generated at Sun Jun 29 13:48:39 2025 by rpki-client